10K Claude Desktop Users Exposed by Zero-Click Vulnerability

A zero-click flaw in Anthropic’s Claude Desktop Extensions allows attackers to trigger remote code execution via Google ...

Claude desktop extension can be hijacked to send out malware by a simple Google Calendar event

AI assistants apparently can't distinguish between instructions and data, and that is at the center of many zero-click prompt ...
Infosecurity Magazine

New Zero-Click Flaw in Claude Desktop Extensions, Anthropic Declines Fix

Security researchers from LayerX identified a new flaw in 50 Claude Desktop Extensions that could lead to unauthorized remote ...
CSO Online

Anthropic’s DXT poses “critical RCE vulnerability” by running with full system privileges

Anthropic didn’t dispute the security report, but suggested it would only be caused by user error, where users deliberately ...
Security Boulevard

Flaw in Anthropic Claude Extensions Can Lead to RCE in Google Calendar: LayerX

LayerX researchers uncover a flaw in Anthropic's Claude Desktop Extensions that could lead to a RCE vulnerability if exploited by a threat actor. The report adds to the growing list of AI security ...
Liliputing

Firefox desktop extension support coming to Android browser

Mozilla has announced that a major change is coming to the Firefox Android app. Desktop browser extensions will finally be fully supported by the end of this year. An exact date hasn’t been set yet, ...